Stack Overflow
Stack Overflow

Questions tagged [mod-auth-openidc]

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that authenticates users against an OpenID Connect Provider. It can also function as an OAuth 2.0 Resource Server, validating access tokens presented by OAuth 2.0 clients against an OAuth 2.0 Authorization Server.

90 questions
2
votes
0 answers

keycloak with mod_auth_openidc advantages

I am in the middle of setting up SSO in our infrastructure and I am wondering if people would more experience could share their learnings. I already have a reverse-proxy in-front of our system. We have several legacy java apps running on tomcat We…
Istvano
  • 992
  • 1
  • 12
  • 19
2
votes
2 answers

mod_auth_openidc build steps on windows 64bit

I am trying to compile mod_auth_openidc module on windows 7 64bit os I got source code from Source Code from github I tried to build this module using visual studio 2015 but it was throwing an error "You must use GNU compiler". From last few days…
Prakash
  • 100
  • 1
  • 1
  • 8
2
votes
1 answer

authentication for custom web application with mod_auth_openidc

I have a basic web application which runs on apache 2.2 and doesn't have any authentication. The site content is a static webpage. Our small organization is currently working on implementing mod_auth_openidc for all the websites. I wanted to…
Tommy
  • 277
  • 1
  • 4
  • 17
2
votes
0 answers

Tomcat roles with AJP and mod_auth_openidc

My application runs on a tomcat (v8) and needs roles to work. Until now, I managed the users and their roles with a custom JDBCRealm which I configured in the server.xml. Also, until now I accessed the tomcat webserver directly. Now I tried to use…
s3b
  • 158
  • 1
  • 10
2
votes
1 answer

expire or redirect http of 401 for mod_auth_openidc

I'm not sure if this is something handled in OIDC or apache in general but what I'm seeing is this and was hoping for some advice: A customer is logged into multiple Google accounts and at the Account Chooser they click the wrong account they get a…
Trimbee
  • 75
  • 1
  • 8
2
votes
3 answers

rewritecond based on http status code

Is there any way in apache to set a rewrite condition based on what http code response you're getting? The server in front of an oauth proxy (apache) that redirects (302) to my auth provider; however I don't want it to proxy anything in the the…
Trimbee
  • 75
  • 1
  • 8
2
votes
1 answer

how to validate WSO2 oauth2 access token on Resource Server

I am looking for fittings ends to our SSO puzzle. Currently we have an OpenLDAP behind WSO2 Identity Provider. A client (Service Provider) redirects authorization to the IP (OAuth2) and recieves an access_token. All fine. Next step is to validate…
Raf
  • 842
  • 1
  • 9
  • 25
2
votes
1 answer

How to set session expiry time for mod_auth_openidc

We are using OpenID Connect on one of our applications, and implementing with Apache's mod_auth_openidc. Is there a way to set the expiry time of the session? Our current configuration looks like this: OIDCProviderMetadataURL…
Aaron
  • 605
  • 1
  • 9
  • 19
2
votes
3 answers

PingFederate OAuth validate access token using Apache Integration Kit

We are using Apache integration kit (modpf) for integrating web application with PingFederate as SP. We want to use PingFederate as OAuth server as well. Can we use same integration kit to validate access token generated by OAuth server? or are…
Shashank
  • 249
  • 2
  • 13
1
vote
0 answers

php subpage repeating in link

I just implemented mod_auth_openidc authentication on an apache website and noticed that sometimes after sitting on a webpage for a few minutes, then navigating to another page, I get an error Warning: include(home?page=home.php): Failed to open…
1TanMan
  • 11
  • 4
1
vote
1 answer

cURL authentication with mod_auth_openidc and keycloak

I have an authentication server running Keycloak, and a Apache2 webserver with mod_auth_openidc to do OAuth2 authorization. With browsers, I can successfully intercept access to protected resource to redirect user to Keycloak login page. After…
wwwdavid34
  • 11
  • 3
1
vote
2 answers

Redirect Loop while using Apache mod auth openidc module

We have used mod auth openidc module in Apache server connected to Okta OIDC. After login into okta -we get multiple redirects back to redirection and again back to okta. Something similar to below issue : As discussed in this…
LazyDeveloper
  • 91
  • 6
1
vote
1 answer

Issues with OIDC while performing DNS Flip

We recently performed a DNS Flip on a Rails application integration environment. We've set example-1.com as a CNAME pointing at A record example-2.com. The service at example-2.com is a Ruby on Rails application with Apache and Passenger Phusion. …
ykirloskar
  • 51
  • 1
  • 7
1
vote
0 answers

Access token claims not set in environment apache mod _auth_openidc

Team Im using mod_auth_openidc module in apache httpd for openauth\openid authentication. I get both id_token and access_token from OP. Claims in id token are set in environment as well as in header. But claims in access token are not resolved. I…
sasidharan
  • 127
  • 1
  • 2
  • 10
1
vote
2 answers

How can I allow multiple authentication types in Apache?

I have an Apache server using mod_auth_openidc. For one specific directory (the API), I'd like to allow bearer token authentication first with fallback to OpenID. Is that something I can accomplish with an .htaccess file in the API…
Will Regelmann
  • 31
  • 3
1
2
3 4 5 6